WO2020098373A1 - 向区块链中存入、及获取商户认证数据的方法和装置 - Google Patents

向区块链中存入、及获取商户认证数据的方法和装置 Download PDF

Info

Publication number
WO2020098373A1
WO2020098373A1 PCT/CN2019/106585 CN2019106585W WO2020098373A1 WO 2020098373 A1 WO2020098373 A1 WO 2020098373A1 CN 2019106585 W CN2019106585 W CN 2019106585W WO 2020098373 A1 WO2020098373 A1 WO 2020098373A1
Authority
WO
WIPO (PCT)
Prior art keywords
authentication data
verification
merchant
blockchain
node
Prior art date
Application number
PCT/CN2019/106585
Other languages
English (en)
French (fr)
Inventor
车慧子
Original Assignee
阿里巴巴集团控股有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 阿里巴巴集团控股有限公司 filed Critical 阿里巴巴集团控股有限公司
Priority to SG11202100502TA priority Critical patent/SG11202100502TA/en
Priority to EP19883856.7A priority patent/EP3816916A4/en
Publication of WO2020098373A1 publication Critical patent/WO2020098373A1/zh
Priority to US17/191,375 priority patent/US20210192512A1/en

Links

Images

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/40Authorisation, e.g. identification of payer or payee, verification of customer or shop credentials; Review and approval of payers, e.g. check credit lines or negative lists
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q30/00Commerce
    • G06Q30/018Certifying business or products
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/02Payment architectures, schemes or protocols involving a neutral party, e.g. certification authority, notary or trusted third party [TTP]
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/40Authorisation, e.g. identification of payer or payee, verification of customer or shop credentials; Review and approval of payers, e.g. check credit lines or negative lists
    • G06Q20/401Transaction verification
    • G06Q20/4014Identity check for transactions
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q30/00Commerce
    • G06Q30/06Buying, selling or leasing transactions
    • G06Q30/0601Electronic shopping [e-shopping]
    • G06Q30/0609Buyer or seller confidence or verification
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/06Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols the encryption apparatus using shift registers or memories for block-wise or stream coding, e.g. DES systems or RC4; Hash functions; Pseudorandom sequence generators
    • H04L9/0618Block ciphers, i.e. encrypting groups of characters of a plain text message using fixed encryption transformation
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3247Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving digital signatures
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q2220/00Business processing using cryptography
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/50Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols using hash chains, e.g. blockchains or hash trees

Definitions

  • the embodiments of the present specification relate to the field of blockchain technology, and more specifically, to a method and device for storing and acquiring merchant authentication data into the blockchain.
  • the embodiments of the present specification aim to provide a more effective solution for storing and acquiring merchant authentication data in the blockchain to solve the deficiencies in the prior art.
  • one aspect of this specification provides a method for depositing merchant authentication data into a blockchain, the blockchain includes multiple verification nodes and multiple usage nodes, the multiple verification nodes and the issuance each Each organization of the category authentication data corresponds to each other, and the method is performed on the first verification node of the plurality of verification nodes, including:
  • the authentication data Broadcast the authentication data to multiple other verification nodes in the blockchain, so that the authentication data is verified based on the consensus mechanism and stored in the blockchain when the verification is passed.
  • the authentication data includes image data and / or text data.
  • the authentication data is stored in the blockchain in association with the merchant's merchant identity when the verification is passed.
  • the authentication data is stored in the blockchain in association with the node identification of the first verification node when the verification is passed.
  • the verification is performed by a smart contract deployed in the blockchain, and the smart contract is jointly signed by the multiple verification nodes.
  • the verification includes verification of at least one of image data: size, clarity, legitimacy of content, correctness of content, and whether it is modified.
  • the verification includes verification of at least one of text data: format and content correctness.
  • broadcasting the authentication data to other verification nodes in the blockchain includes broadcasting the authentication data and the first verification to other verification nodes in the blockchain The digital signature of the node, wherein the verification includes verification of the digital signature.
  • Another aspect of this specification provides a method for obtaining merchant authentication data from a blockchain
  • the blockchain includes multiple verification nodes and multiple usage nodes, the multiple verification nodes and various institutions that issue various types of authentication data
  • the method is executed on the first usage node among the plurality of usage nodes, including:
  • each block stores authentication data of multiple merchants, wherein the multiple merchants include the first merchant;
  • reading the authentication data of the first merchant from all the blocks includes establishing an index on the merchants of the all blocks, and reading at least one piece of authentication data of the first merchant based on the index .
  • reading the authentication data of the first merchant from all the blocks includes establishing a database of authentication data for all the blocks, and reading at least one authentication of the first merchant based on the database Data, wherein the database includes the association relationship between the merchant and the authentication data.
  • the database further includes the association relationship between the authentication data and the node identifier of the verification node corresponding to the issuing agency, wherein reading at least one piece of authentication data of the first merchant from all the blocks includes, from The all blocks read at least one piece of authentication data of the first merchant and the node identification of the verification node of their respective issuing agency, and based on the node identification of the verification node of the respective issuing agency of the at least one piece of authentication data, Filter at least one piece of certification data.
  • the database further includes an association relationship between the authentication data and the timestamp of the block where it is located, wherein reading at least one piece of authentication data of the first merchant from the all blocks includes, from the all The block reads at least one piece of authentication data of the first merchant and their corresponding time stamps, and screens the at least one piece of authentication data based on the time stamps corresponding to the at least one piece of authentication data.
  • Another aspect of this specification provides an apparatus for storing merchant authentication data into a blockchain
  • the blockchain includes multiple verification nodes and multiple usage nodes, and the multiple verification nodes are Each organization corresponds to each other.
  • the implementation of the device on the first verification node of the plurality of verification nodes includes:
  • An obtaining unit configured to obtain authentication data of a merchant, the authentication data being issued by an organization corresponding to the first verification node;
  • the broadcasting unit is configured to broadcast the authentication data to other verification nodes in the blockchain, so that the authentication data is verified based on the consensus mechanism and stored in the area when the verification is passed Blockchain.
  • the broadcasting unit is further configured to broadcast the authentication data and the digital signature of the first verification node to other verification nodes in the blockchain, wherein the verification includes Verification of the digital signature.
  • Another aspect of this specification provides an apparatus for acquiring merchant authentication data from a blockchain
  • the blockchain includes multiple verification nodes and multiple usage nodes, the multiple verification nodes and various institutions that issue various types of authentication data
  • the implementation of the device on the first usage node among the plurality of usage nodes includes:
  • the acquiring unit is configured to acquire all blocks in the blockchain, wherein each block stores authentication data of multiple merchants, wherein the multiple merchants include the first merchant;
  • the reading unit is configured to read at least one piece of authentication data of the first merchant from all the blocks.
  • the reading unit includes an index building sub-unit configured to establish an index on the merchant for all the blocks, and a first reading sub-unit configured to read based on the index At least one authentication data of the first merchant.
  • the reading unit includes a database creation sub-unit configured to establish a database on authentication data for all the blocks, wherein the database includes an association relationship between merchants and authentication data, and The second reading subunit is configured to read at least one piece of authentication data of the first merchant based on the database.
  • the database further includes the association relationship between the authentication data and the node identifier of the verification node corresponding to the issuing agency, wherein the reading unit further includes a third reading subunit configured to All the blocks read the at least one piece of authentication data of the first merchant and the node identification of the verification node of their respective issuer, and the first screening subunit configured to be based on the Verify the node identifier of the node, and filter the at least one piece of authentication data.
  • the database further includes an association relationship between the authentication data and the timestamp of the block where it is located, wherein the reading unit further includes a fourth reading subunit configured to The block reads at least one piece of authentication data of the first merchant and their respective time stamps, and the second screening subunit is configured to authenticate the at least one piece of authentication data based on the respective time stamps of the at least one piece of authentication data Data.
  • the merchant authentication scheme Through the merchant authentication scheme according to the embodiment of this specification, through the p2p network of the blockchain, it can ensure that all nodes reach data consistency in time, solving the problem of data inconsistency caused by the traditional authentication process; recording all authentication data through the blockchain network The change record makes any authentication data changes traceable, thereby solving the problem of data untrackability in the traditional authentication process; in addition, through the network structure and operation mechanism of the blockchain network, the data of each node can be synchronized to the second pole, which solves The traditional authentication process is complicated and the data link is too long.
  • FIG. 1 shows a blockchain-based authentication system 100 according to an embodiment of this specification
  • FIG. 3 shows a method for obtaining merchant authentication data from a blockchain according to an embodiment of this specification
  • FIG. 4 shows an apparatus 400 for storing merchant authentication data into a blockchain according to an embodiment of this specification.
  • FIG. 5 shows an apparatus 500 for acquiring merchant authentication data from a blockchain according to an embodiment of this specification.
  • FIG. 1 shows a blockchain-based authentication system 100 according to an embodiment of this specification.
  • the system 100 is a blockchain system, which includes a verification node 11, a verification node 12, and a usage node 13. It can be understood that although only three nodes are shown in the figure, this is only schematic, and the system 100 may include any number of verification nodes and usage nodes.
  • the verification node 11 or 12 corresponds to an organization that issues merchant authentication data.
  • the verification node 11 may correspond to an authority such as an industry and commerce bureau, and the verification node 12 may correspond to a certifier.
  • the certifier It can be a certification body such as SGS, TUV (Germany TUV Group).
  • the verification node 11 obtains authentication data corresponding to the business license (for example, image data of the business license) after applying the business license to the merchant through the relevant business of the Industry and Commerce Bureau, and broadcasts the obtained authentication to the blockchain Data, and multiple verification nodes in the system determine the accounting node based on the consensus mechanism, and the accounting node stores the authentication data in the blockchain.
  • the accounting node may be a verification node 12. After storing the authentication data in the blockchain, the verification node 12 broadcasts to all nodes in the system 100, so that each node updates the local block to Make the data of each node consistent.
  • the authenticator corresponding to the verification node 12 can also obtain the authentication data of the merchant through its own business, and similarly store the authentication data into the blockchain through the verification node 12.
  • the usage node 13 is a node that uses the authentication data stored in the blockchain, which corresponds to an Internet e-commerce platform, for example.
  • the platform includes multiple merchants and conducts business for consumers. When the platform consumer queries the merchant's authentication data through the platform, the platform obtains all the blocks in the blockchain by using the node 13, and obtains the corresponding merchant's authentication data from all the blocks for display to the consumer.
  • FIG. 2 illustrates a method for storing merchant authentication data into a blockchain according to an embodiment of the present specification.
  • the blockchain includes multiple verification nodes and multiple usage nodes. Each organization of the category authentication data corresponds to each other, and the method is performed on the first verification node of the plurality of verification nodes, including:
  • step S202 obtain authentication data of the merchant, the authentication data is issued by an organization corresponding to the first verification node;
  • step S204 the authentication data is broadcast to other verification nodes in the blockchain, so that the authentication data is verified based on the consensus mechanism and stored in the blockchain if the verification is passed in.
  • the blockchain is, for example, a consortium chain, which includes multiple verification nodes and multiple usage nodes.
  • the verification node corresponds to an organization that issues authentication data.
  • the organization is, for example, the Bureau of Industry and Commerce, which issues business licenses of merchants.
  • the agency or a third-party certification agency, such as SGS and TUV, issues various certifications of merchants.
  • Data such as enterprise certification data, product certification data, product testing information, etc.
  • the user node can obtain the authentication data of the merchant through the blockchain, and it does not participate in the verification and deposit process of the authentication data in the blockchain.
  • step S202 the authentication data of the merchant is obtained, and the authentication data is issued by an organization corresponding to the first verification node.
  • This method is executed at the first verification node, which corresponds to, for example, the Industrial and Commercial Bureau.
  • a merchant may submit the prescribed materials and execute prescribed procedures to the Industry and Commerce Bureau, so that the Industry and Commerce Bureau can approve the merchant ’s business license.
  • the industry and commerce bureau can take the business license as an image, so as to obtain the authentication data of the merchant corresponding to the business license at the first verification node.
  • the first verification node may also be a third-party certification agency (such as SGS), which obtains text data that authenticates the merchant by, for example, conducting a door-to-door survey on the merchant and testing the merchant ’s merchandise.
  • the text data includes the merchant, for example.
  • the authentication data corresponding to the text data of the merchant is acquired at the first verification node.
  • the authentication data may also include both image data and text data.
  • the authentication data may include a text description of the merchant and also image data such as a business license.
  • step S204 the authentication data is broadcast to other verification nodes in the blockchain, so that the authentication data is verified based on the consensus mechanism and stored in the blockchain if the verification is passed in.
  • the first verification node may use the private key to digitally sign the authentication data to make it clear that the issuer of the authentication data is the organization corresponding to the digital signature.
  • the first verification node broadcasts the authentication data and the digital signature to the plurality of verification nodes in the blockchain, so that each verification node obtains the authentication data and the digital signature.
  • the first verification node may send the authentication data and the digital signature to the second verification node.
  • the second verification node verifies the digital signature of the first verification node through the public key of the first verification node.
  • the second verification node sends the authentication data and the digital signature to a third verification node, and the third verification node operates similarly to the second verification node. Therefore, the file is propagated to each verification node in the blockchain, and at the same time, the initial authentication data is guaranteed not to be tampered.
  • the consensus mechanism may be any consensus mechanism that can be obtained by those skilled in the art.
  • the consensus mechanism includes but is not limited to: Proof of Work (POW), Proof of Rights (POS), Proof of Rights and Interests (DPOS), and the use of Byzantine Fault tolerance (PBFT), authorized Byzantine fault tolerance (DBFT), etc.
  • PBFT and DPOS are used as a consensus mechanism in the alliance chain.
  • the accounting node determined based on the specific consensus mechanism may be a verification node other than the first verification node, or may be the first verification node itself.
  • each verification node after acquiring the authentication data, each verification node puts the authentication data into a local pool of information to be billed, and after consensus, the accounting node places the pool of information to be billed locally
  • the multiple authentication data are packaged and stored in a block.
  • the accounting node After determining the accounting node, the accounting node verifies the authentication data and digital signature received locally. First, the accounting node verifies whether the digital signature is the digital signature of the first verification node. Specifically, it can be obtained through the public key pair of the first verification node obtained in advance or sent from the first verification node and the authentication data at the same time. The digital signature is decrypted and compared with the digest of the authentication data to determine whether the digital signature originated from the first verification node and whether the authentication data has been tampered with.
  • the authentication data may be image data.
  • it in addition to verifying the digital signature, it can also verify whether the form and content of the image meet the requirements. For example, you can verify whether the size and clarity of the image meet the regulations, whether the content of the image is legal, whether the image shows the correct content, whether the image has been modified, and so on.
  • the authentication data may also be text data.
  • the format and content of the text can be verified.
  • the text is the business life of the merchant, which can be based on the existing authentication data of the merchant existing locally. Determine whether the operating period is correct.
  • each verification node is a node in the blockchain, it has all the data in the blockchain, so it can obtain the existing authentication data of the merchant from all the ledgers of the blockchain downloaded locally And determine the correctness of the newly acquired authentication data based on the existing authentication data.
  • a smart contract for performing the verification of the authentication data described above is deployed in the blockchain, and the smart contract is jointly signed by the multiple verification nodes.
  • the smart contract may include multiple clauses, each of which is directed to a specific verification action. For example, before checking the authentication data, the accounting node can call the smart contract locally to trigger the smart contract to start execution. After the smart contract starts to run, it receives the authentication data and digital signature, and verifies it based on each clause in it.
  • the smart contract may obtain the pre-stored public key of the first verification node from the storage unit, and perform calculation based on the algorithm of the digital signature to verify the digital signature.
  • the smart contract triggers terms related to the image data, such as determining the size of the image and determining whether the size of the image meets the requirements, determining the clarity of the image, and determining the image Whether the clarity of the image meets the regulations, by calling the image detection model to detect the content of the image and determine whether the content meets the regulations and so on.
  • the smart contract can automatically take corresponding actions based on the judgment result, for example, in the case where the sharpness of the image is judged to be insufficient, automatically cancel the accounting storage of the authentication data And notify the first verification node that after judging that the image conforms to various regulations, it can automatically perform accounting storage for the authentication data, and so on.
  • the smart contract triggers a clause related to the text data.
  • the smart contract may include a clause to check the text format.
  • the clause compares the format of the text data with a predetermined number of formats to determine whether the format of the text data is a prescribed format.
  • the smart contract can check the content based on the predetermined format.
  • the text is searched through a preset keyword library to determine which clause the text triggers.
  • Each clause in the smart contract designs a specific verification algorithm for the specific content in the authentication data.
  • the smart contract may include a clause for verifying the business years of the merchant.
  • the number in the predetermined position in the text that is, the operating period in the text
  • the number by comparing the number with the information of the existing business operation period of the merchant, to verify the correctness of the content of the text. For example, by determining whether the number is the business life of the merchant submitted last year plus one, to determine the correctness of the business life.
  • a new block in the blockchain is generated based on the authentication data, that is, the authentication data is stored as a block Into the blockchain.
  • multiple authentication data may be packaged together in the accounting node to generate blocks.
  • the accounting node broadcasts the generation of the new block to the entire blockchain, so that each node updates the local block.
  • the authentication data can be stored in association with the merchant identification.
  • the authentication data and the corresponding merchant can be stored in the form of a database.
  • the authentication data can also be stored in association with the node identification of the first verification node.
  • an issuer identification column can be added to the database, so that the issuer corresponding to the authentication data can be quickly obtained.
  • the authentication data can also be stored in association with the time stamp of the block where it is located.
  • FIG. 3 shows a method for obtaining merchant authentication data from a blockchain according to an embodiment of the present specification.
  • the blockchain includes multiple verification nodes and multiple usage nodes, and the multiple verification nodes are issued with various types of authentication. Each organization of data corresponds to each other.
  • the method is executed on the first usage node among the plurality of usage nodes, including:
  • step S302 all blocks in the blockchain are acquired, wherein each block stores authentication data of multiple merchants, wherein the multiple merchants include the first merchant;
  • step S304 at least one piece of authentication data of the first merchant is read from all the blocks.
  • step S302 all blocks in the blockchain are acquired, where each block stores respective authentication data of multiple merchants, wherein the multiple merchants include the first merchant.
  • the specific description of the blockchain can refer to the above, and will not be repeated here.
  • the first usage node may be any usage node of the plurality of usage nodes.
  • the use node as a node in the blockchain can download the full amount of data in the blockchain and constantly update the locally stored blocks (data blocks), so that the locally stored blocks and the blocks in the blockchain remain Consistent.
  • the authentication data of the merchant and the information associated with the authentication data, such as the relevant merchant, issuer, time stamp, etc. are stored in the multiple blocks. Among them, the blocks in the blockchain continue to grow over time, and at the same time, the blocks stored at each node in the blockchain are also updated.
  • step S304 at least one piece of authentication data of the first merchant is read from all the blocks.
  • At the locality of the first usage node at least one piece of authentication data of the first merchant is obtained by searching in the plurality of blocks with the first merchant identifier as a keyword.
  • the authentication data is text information
  • the text information includes the merchant identification of the first merchant.
  • the authentication data can be searched out.
  • at least one piece of authentication data associated with the first merchant can be searched by searching using the first merchant logo as a keyword.
  • an index for each merchant may be established for all the blocks.
  • the index can sort merchants based on a certain order, for example, in the case where the merchant identification is pinyin, the merchants can be sorted based on alphabetical order, so that the first merchant can be easily found in the index and read in the index Take at least one piece of authentication data corresponding to the first merchant.
  • a database on authentication data may be established for all the blocks.
  • the database includes, for example, the association relationship between the merchant and the authentication data, the association relationship between the issuer and the authentication data, the association relationship between the authentication data and the time stamp of the block where it is located, and so on. Therefore, based on the database, at least one piece of authentication data of the first merchant can be read.
  • the timestamp and the issuer corresponding to the at least one piece of authentication data may be obtained, so that the at least one piece of authentication data may be based on the timestamp and / or the issuer Filter the authentication data, for example, you can choose the three most recent authentication data output timestamp, or you can choose the authentication data issued by a designated institution (such as the Industry and Commerce Bureau) to output.
  • a designated institution such as the Industry and Commerce Bureau
  • FIG. 4 shows an apparatus 400 for storing merchant authentication data into a blockchain according to an embodiment of the present specification.
  • the blockchain includes multiple verification nodes and multiple usage nodes.
  • the multiple verification nodes are issued with Various organizations of various types of authentication data correspond to each other.
  • the implementation of the device on the first verification node of the plurality of verification nodes includes:
  • the obtaining unit 41 is configured to obtain authentication data of the merchant, and the authentication data is issued by an organization corresponding to the first verification node;
  • the broadcasting unit 42 is configured to broadcast the authentication data to a plurality of other verification nodes in the blockchain, so that the authentication data is verified based on a consensus mechanism and stored in the verification if the verification is passed In the blockchain.
  • the broadcasting unit 42 is further configured to broadcast the authentication data and the digital signature of the first verification node to other verification nodes in the blockchain, wherein the verification includes Verification of the digital signature.
  • FIG. 5 shows an apparatus 500 for acquiring merchant authentication data from a blockchain according to an embodiment of the present specification.
  • the blockchain includes multiple verification nodes and multiple usage nodes. Each organization of the authentication data corresponds to each other.
  • the implementation of the device on the first usage node among the plurality of usage nodes includes:
  • the acquiring unit 51 is configured to acquire all blocks in the blockchain, wherein each block stores authentication data of multiple merchants, wherein the multiple merchants include the first merchant;
  • the reading unit 52 is configured to read at least one piece of authentication data of the first merchant from all the blocks.
  • the reading unit 52 includes an index establishment sub-unit 521 configured to establish an index about the merchant for all the blocks, and a first reading sub-unit 522 configured to be based on the The index reads at least one piece of authentication data of the first merchant.
  • the reading unit 52 includes a database creation sub-unit 523 configured to establish a database on authentication data for all the blocks, wherein the database includes a relationship between merchants and authentication data , And the second reading subunit 524, configured to read at least one piece of authentication data of the first merchant based on the database.
  • the database further includes the association relationship between the authentication data and the node identifier of the verification node corresponding to the issuing agency, wherein the reading unit 52 further includes a third reading sub-unit 525, which is configured as, Reading at least one piece of authentication data of the first merchant and the node identifier of the verification node of their respective issuing institution from the all blocks, and the first screening subunit 526, configured to, based on the at least one piece of authentication data The node identifier of the verification node of the issuing institution filters the at least one piece of authentication data.
  • the database further includes an association relationship between the authentication data and the time stamp of the block where it is located, wherein the reading unit 52 further includes a fourth reading sub-unit 527 configured to All blocks read at least one piece of authentication data of the first merchant and their respective time stamps, and the second screening subunit 528 is configured to, based on the respective time stamps of the at least one piece of authentication data, check A copy of the certification data for screening.
  • the merchant authentication scheme Through the merchant authentication scheme according to the embodiment of this specification, through the p2p network of the blockchain, it can ensure that all nodes reach data consistency in time, solving the problem of data inconsistency caused by the traditional authentication process; recording all authentication data through the blockchain network The change record makes any authentication data changes traceable, thereby solving the problem of data untrackability in the traditional authentication process; in addition, through the network structure and operation mechanism of the blockchain network, the data of each node can be synchronized to the second pole, which solves The traditional authentication process is complicated and the data link is too long.
  • RAM random access memory
  • ROM read-only memory
  • electrically programmable ROM electrically erasable and programmable ROM
  • registers hard disks, removable disks, CD-ROMs, or all fields of technology. Any other known storage medium.

Landscapes

  • Business, Economics & Management (AREA)
  • Engineering & Computer Science (AREA)
  • Accounting & Taxation (AREA)
  • Computer Security & Cryptography (AREA)
  • General Physics & Mathematics (AREA)
  • Strategic Management (AREA)
  • Physics & Mathematics (AREA)
  • General Business, Economics & Management (AREA)
  • Finance (AREA)
  • Theoretical Computer Science (AREA)
  • Marketing (AREA)
  • Development Economics (AREA)
  • Economics (AREA)
  • Signal Processing (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Entrepreneurship & Innovation (AREA)
  • Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)
  • Information Retrieval, Db Structures And Fs Structures Therefor (AREA)
  • Management, Administration, Business Operations System, And Electronic Commerce (AREA)

Abstract

一种向区块链中存入商户认证数据的方法和装置、以及从区块链获取商户认证数据的方法和装置,所述区块链包括多个验证节点和多个使用节点,所述多个验证节点与发行各类认证数据的各个机构分别对应,所述存入商户认证数据的方法在所述多个验证节点中的第一验证节点执行,包括:获取商户的认证数据(202),所述认证数据由所述第一验证节点对应的机构发行;以及向所述区块链中的其它多个验证节点广播所述认证数据,以使得所述认证数据基于共识机制得到验证、并在验证通过的情况中被存入所述区块链中(204)。

Description

向区块链中存入、及获取商户认证数据的方法和装置 技术领域
本说明书实施例涉及区块链技术领域,更具体地,涉及一种向区块链中存入、及获取商户认证数据的方法和装置。
背景技术
在互联网平台中,消费者经常会通过该平台查询B类商户的信用、认证数据等。传统的商户认证流程采用的是串行接口调用流程,例如,作为认证数据使用方的平台,如果希望获取商户认证数据,必须通过调用认证商的接口,认证商接收请求后,再请求数据中间商,数据中间商再调用工商局接口。这样,整个数据链路需要链路中的每一个节点正常工作才能返回结果。并且,这条链路上的每个节点都会在自己本地保存数据。另外,为了保证数据的真实性,所有的节点的数据必须完全一致,才能保证每个节点对外暴露的数据是正确的。为了保证所有的节点的数据是一致的,如果部分节点数据发生了变更,需要通过接口主动通知其它节点,或者其它节点主动去获取其它节点数据进行对比。
因此,需要一种更有效的进行商户认证的方案。
发明内容
本说明书实施例旨在提供一种更有效的向区块链中存入、及获取商户认证数据的方案,以解决现有技术中的不足。
为实现上述目的,本说明书一个方面提供一种向区块链中存入商户认证数据的方法,所述区块链包括多个验证节点和多个使用节点,所述多个验证节点与发行各类认证数据的各个机构分别对应,所述方法在所述多个验证节点中的第一验证节点执行,包括:
获取商户的认证数据,所述认证数据由所述第一验证节点对应的机构发行;以及
向所述区块链中的其它多个验证节点广播所述认证数据,以使得所述认证数据基于共识机制得到验证、并在验证通过的情况中被存入所述区块链中。
在一个实施例中,所述认证数据包括图像数据和/或文本数据。
在一个实施例中,所述认证数据在验证通过的情况中与所述商户的商户标识关联地 被存入所述区块链中。
在一个实施例中,所述认证数据在验证通过的情况中与所述第一验证节点的节点标识关联地被存入所述区块链中。
在一个实施例中,所述验证通过部署在所述区块链中的智能合约执行,所述智能合约由所述多个验证节点共同签订。
在一个实施例中,所述验证包括对图像数据的以下至少一项的验证:尺寸、清晰度、内容合法性、内容正确性、是否修改。
在一个实施例中,所述验证包括对文本数据的以下至少一项的验证:格式、内容正确性。
在一个实施例中,向所述区块链中的其它多个验证节点广播所述认证数据包括,向所述区块链中的其它多个验证节点广播所述认证数据及所述第一验证节点的数字签名,其中,所述验证包括对所述数字签名的验证。
本说明书另一方面提供一种从区块链获取商户认证数据的方法,所述区块链包括多个验证节点和多个使用节点,所述多个验证节点与发行各类认证数据的各个机构分别对应,所述方法在所述多个使用节点中的第一使用节点执行,包括:
获取区块链中的全部区块,其中所述全部区块中存储有多个商户各自的认证数据,其中,所述多个商户中包括第一商户;以及
从所述全部区块读取第一商户的至少一份认证数据。
在一个实施例中,从所述全部区块读取第一商户的认证数据包括,对所述全部区块建立关于商户的索引,并基于所述索引读取第一商户的至少一份认证数据。
在一个实施例中,从所述全部区块读取第一商户的认证数据包括,对所述全部区块建立关于认证数据的数据库,并基于所述数据库读取第一商户的至少一份认证数据,其中,所述数据库中包括商户与认证数据的关联关系。
在一个实施例中,所述数据库中还包括认证数据与其发行机构对应的验证节点的节点标识的关联关系,其中,从所述全部区块读取第一商户的至少一份认证数据包括,从所述全部区块读取第一商户的至少一份认证数据及其各自的发行机构的验证节点的节点标识,并基于该至少一份认证数据各自的发行机构的验证节点的节点标识,对所述至少一份认证数据进行筛选。
在一个实施例中,所述数据库中还包括认证数据与其所在区块的时间戳的关联关系,其中,从所述全部区块读取第一商户的至少一份认证数据包括,从所述全部区块读取第一商户的至少一份认证数据及其各自对应的时间戳,并基于该至少一份认证数据各自对应的时间戳,对所述至少一份认证数据进行筛选。
本说明书另一方面提供一种向区块链中存入商户认证数据的装置,所述区块链包括多个验证节点和多个使用节点,所述多个验证节点与发行各类认证数据的各个机构分别对应,所述装置在所述多个验证节点中的第一验证节点实施,包括:
获取单元,配置为,获取商户的认证数据,所述认证数据由所述第一验证节点对应的机构发行;以及
广播单元,配置为,向所述区块链中的其它多个验证节点广播所述认证数据,以使得所述认证数据基于共识机制得到验证、并在验证通过的情况中被存入所述区块链中。
在一个实施例中,所述广播单元还配置为,向所述区块链中的其它多个验证节点广播所述认证数据及所述第一验证节点的数字签名,其中,所述验证包括对所述数字签名的验证。
本说明书另一方面提供一种从区块链获取商户认证数据的装置,所述区块链包括多个验证节点和多个使用节点,所述多个验证节点与发行各类认证数据的各个机构分别对应,所述装置在所述多个使用节点中的第一使用节点实施,包括:
获取单元,配置为,获取区块链中的全部区块,其中所述全部区块中存储有多个商户各自的认证数据,其中,所述多个商户中包括第一商户;以及
读取单元,配置为,从所述全部区块读取第一商户的至少一份认证数据。
在一个实施例中,所述读取单元包括,索引建立子单元,配置为,对所述全部区块建立关于商户的索引,以及第一读取子单元,配置为,基于所述索引读取第一商户的至少一份认证数据。
在一个实施例中,所述读取单元包括,数据库建立子单元,配置为,对所述全部区块建立关于认证数据的数据库,其中,所述数据库中包括商户与认证数据的关联关系,以及第二读取子单元,配置为,基于所述数据库读取第一商户的至少一份认证数据。
在一个实施例中,所述数据库中还包括认证数据与其发行机构对应的验证节点的节点标识的关联关系,其中,所述读取单元还包括,第三读取子单元,配置为,从所述全 部区块读取第一商户的至少一份认证数据及其各自的发行机构的验证节点的节点标识,以及第一筛选子单元,配置为,基于该至少一份认证数据各自的发行机构的验证节点的节点标识,对所述至少一份认证数据进行筛选。
在一个实施例中,所述数据库中还包括认证数据与其所在区块的时间戳的关联关系,其中,所述读取单元还包括,第四读取子单元,配置为,从所述全部区块读取第一商户的至少一份认证数据及其各自对应的时间戳,以及第二筛选子单元,配置为,基于该至少一份认证数据各自对应的时间戳,对所述至少一份认证数据进行筛选。
本说明书另一方面提供一种计算设备,包括存储器和处理器,其特征在于,所述存储器中存储有可执行代码,所述处理器执行所述可执行代码时,实现上述任一项方法。
通过根据本说明书实施例的商户认证方案,通过区块链的p2p网络,能够保证所有节点及时达到数据一致,解决了传统认证流程导致的数据不一致性问题;通过区块链网络记录所有的认证数据变更记录,使得任何一个认证数据变更可追溯,从而解决了传统认证流程的数据不可跟踪问题;另外,通过区块链网络的网络结构和运行机制,可以使得各节点的数据秒极同步,解决了传统认证流程复杂,数据链路太长的问题。
附图说明
通过结合附图描述本说明书实施例,可以使得本说明书实施例更加清楚:
图1示出了根据本说明书实施例的基于区块链的认证系统100;
图2示出根据本说明书实施例的一种向区块链中存入商户认证数据的方法;
图3示出根据本说明书实施例的一种从区块链获取商户认证数据的方法;
图4示出根据本说明书实施例的一种向区块链中存入商户认证数据的装置400;以及
图5示出根据本说明书实施例的一种从区块链获取商户认证数据的装置500。
具体实施方式
下面将结合附图描述本说明书实施例。
图1示出了根据本说明书实施例的基于区块链的认证系统100。如图1所示,系统100为区块链系统,其中包括验证节点11、验证节点12、使用节点13。可以理解,图 中虽然只示出三个节点,但是这只是示意性的,系统100中可包括任意数目的验证节点和使用节点。验证节点11或12与发行商户认证数据的机构相对应,例如,如图1中所示,验证节点11可与例如工商局的权威机构对应,验证节点12可与认证商对应,所述认证商可以为例如SGS、TUV(德国莱茵TUV集团)等认证机构。在系统100中,例如验证节点11通过工商局的相关业务给商户办理营业执照之后,获取与营业执照对应的认证数据(例如营业执照的图像数据),向区块链中广播其获取的该认证数据,并由系统中的多个验证节点基于共识机制确定记账节点,并由记账节点将该认证数据存入区块链中。例如,所述记账节点可以为验证节点12,验证节点12在将认证数据存入区块链中之后,通过向系统100中的全部节点广播,从而使得每个节点更新本地的区块,以使得每个节点的数据都是一致的。同时,验证节点12对应的认证商也可以通过自身的业务获取商户的认证数据,并通过验证节点12类似地将该认证数据存入区块链中。使用节点13为使用区块链中存储的认证数据的节点,其例如与互联网电商平台相对应。所述平台中包括多个商户,并面向消费者开展业务。当平台消费者通过该平台查询商户的认证数据时,该平台通过使用节点13获取区块链中的全部区块,并从全部区块中获取相应商户的认证数据,以展示给消费者。
图2示出根据本说明书实施例的一种向区块链中存入商户认证数据的方法,所述区块链包括多个验证节点和多个使用节点,所述多个验证节点与发行各类认证数据的各个机构分别对应,所述方法在所述多个验证节点中的第一验证节点执行,包括:
在步骤S202,获取商户的认证数据,所述认证数据由所述第一验证节点对应的机构发行;以及
在步骤S204,向所述区块链中的其它多个验证节点广播所述认证数据,以使得所述认证数据基于共识机制得到验证、并在验证通过的情况中被存入所述区块链中。
在本说明书实施例中,所述区块链例如为联盟链,其中包括多个验证节点和多个使用节点。所述验证节点与发行认证数据的机构相对应,所述机构例如为工商局,其发行商户的营业执照,所述机构或者为第三方认证机构,如SGS、TUV,其发行商户的各类认证数据,例如企业认证数据、产品认证数据、产品检测信息等等。所述使用节点可通过区块链获取商户的认证数据,其不参与区块链中对认证数据的验证和存入过程。
首先,在步骤S202,获取商户的认证数据,所述认证数据由所述第一验证节点对应的机构发行。
该方法在第一验证节点执行,第一验证节点例如与工商局对应。例如,商户可通过向工商局提交规定的材料、执行规定的程序等,从而使得工商局批准该商户的营业执照。工商局在批准所述营业执照之后,可将该营业执照拍摄为图像,从而在第一验证节点获取商户的与营业执照对应的认证数据。第一验证节点例如也可以为第三方认证机构(如SGS),其例如通过对商户进行上门调查,对商户的商品进行检测等,获取对该商户进行认证的文本数据,该文本数据例如包括商户的多项特征,如商户经营年限、商户经营规模等等。从而在第一验证节点获取商户的与该文本数据对应的认证数据。可以理解,所述认证数据还可以既包括图像数据、也包括文本数据,例如,在第三方认证机构提供的商户认证中,可包括对商户的文本描述、也包括例如营业执照等的图像数据。
在步骤S204,向所述区块链中的其它多个验证节点广播所述认证数据,以使得所述认证数据基于共识机制得到验证、并在验证通过的情况中被存入所述区块链中。
第一验证节点在获取商户的认证数据之后,可使用私钥对该认证数据进行数字签名,以明确该认证数据的发出者为该数字签名对应的机构。之后,第一验证节点将所述认证数据和所述数字签名一起向区块链中的所述多个验证节点广播,从而使得每个验证节点都获取所述认证数据和所述数字签名。例如,第一验证节点可将所述认证数据和所述数字签名发送给第二验证节点,第二验证节点通过第一验证节点的公钥验证第一验证节点的数字签名,在验证通过之后,第二验证节点将所述认证数据和所述数字签名发送给第三验证节点,第三验证节点与第二验证节点类似地操作。从而将所述文件传播至区块链中的每个验证节点,并且同时保证初始认证数据未经篡改。
所述多个验证节点在获取所述认证数据和所述数字签名之后,通过共识机制确定其中的记账节点。所述共识机制可以为本领域技术人员可以获取的任意共识机制,例如,所述共识机制包括但不限于:工作量证明(POW)、权益证明(POS)、权益授权证明(DPOS)、使用拜占庭容错(PBFT)、授权拜占庭容错(DBFT)等等。在一个实施例中,在联盟链中使用PBFT和DPOS作为共识机制。可以理解,基于具体的共识机制确定的记账节点可能为第一验证节点之外的其它验证节点,也可以是第一验证节点自身。
在一个实施例中,各个验证节点在获取所述认证数据之后,将所述认证数据放入本地的待记账信息池中,并在共识后由记账节点将本地的待记账信息池中的多个认证数据打包存储在一个区块中。
在确定记账节点之后,记账节点对本地接收到的所述认证数据和数字签名进行验证。首先,记账节点验证该数字签名是否为第一验证节点的数字签名,具体是,可通过事先 获取的、或者从第一验证节点与所述认证数据同时发送的第一验证节点的公钥对所述数字签名进行解密,并与所述认证数据的摘要进行比较,以确定该数字签名是否来源于第一验证节点、以及所述认证数据是否被篡改。
如上文所述,所述认证数据可以为图像数据,在该情况中,除了验证数字签名之外,还可验证该图像的形式、内容是否符合要求。例如,可验证图像的尺寸、清晰度是否符合规定、图像的内容是否合法、图像示出的内容是否正确、图像是否经过修改等等。所述认证数据还可以为文本数据,在该情况中,可验证文本的格式、内容正确性等,例如,所述文本为商户的经营年限,可基于本地已有的该商户的已有认证数据对该经营年限是否正确进行判断。其中,由于每个验证节点都是区块链中的一个节点,其具有区块链中的全量数据,因此,其可从本地下载的区块链的全部账本中获取该商户的已有认证数据,并基于该已有认证数据对新获取的认证数据的内容正确性进行判断。
在一个实施例中,所述区块链中部署有用于执行上述对认证数据的验证的智能合约,所述智能合约由所述多个验证节点共同签订。所述智能合约中可包括多个条款,每个条款都针对一种具体的检验动作。例如,记账节点在进行对认证数据的检验之前,可在本地调用智能合约,以触发智能合约开始执行。智能合约开始运行之后,其接收该认证数据和数字签名,并基于其中的各个条款对该其进行检验。
例如,在验证所述数字签名时,智能合约可从存储单元获取预存的第一验证节点的公钥,并基于数字签名的算法进行计算,以对所述数字签名进行验证。
例如,在确定该认证数据为图像数据的情况中,智能合约触发其中与图像数据相关的条款,如,确定图像的尺寸并判断该图像的尺寸是否符合规定,确定图像的清晰度并判断该图像的清晰度是否符合规定,通过调用图像检测模型检测图像的内容并确定该内容是否符合规定等等。并且,所述智能合约在获取上述判断结果之后,可基于所述判断结果自动作出相应的动作,例如,在判断所述图像的清晰度不够的情况中,自动取消对该认证数据的记账存储,并通知所述第一验证节点,在判断所述图像符合各个规定之后,可自动执行对该认证数据的记账存储,等等。
例如,在确定该认证数据为文本数据的情况中,智能合约触发其中与文本数据相关的条款。例如,智能合约中可包括检验文本格式的条款,该条款通过将文本数据的格式与预定数量的各个格式进行比对,从而确定该文本数据的格式是否为规定格式。通过以规定格式提交文本数据,使得智能合约可基于预定格式进行内容的检验。例如,通过预设的关键词库对所述文本进行搜索,以确定所述文本触发哪个条款。智能合约中的各条 款针对认证数据中特定的内容设计特定的验证算法,例如,智能合约中可包括用于验证商户经营年限的条款,在确定文本中包括商户经营年限的关键词之后,可获取文本中预定位置的数字(即文本中的经营年限),并通过将该数字与已有的商户经营年限的信息进行比对,以验证该文本的内容正确性。例如,通过确定该数字是否是去年提交的商户经营年限加一,来确定该经营年限的正确性。
在记账节点中完成对所述认证数据的验证之后,在验证通过的情况中,基于所述认证数据,生成区块链中的新的区块,即,将所述认证数据作为区块存入区块链中。如上文所述,记账节点中可能将多个认证数据一起打包生成区块。在生成新的区块之后,记账节点向整个区块链广播该新的区块的生成,以使得每个节点更新本地的区块。
在将认证数据存入区块链中,为了方便信息查询,可将该认证数据与商户标识关联地存储,例如,可以以数据库的形式存储认证数据与对应的商户。在一个实施例中,还可以将认证数据与第一验证节点的节点标识关联地存储,例如,可以在数据库中增添发行机构标识一栏,从而可快速地获取认证数据对应的发行机构。在一个实施例中,还可以将认证数据与其所在区块的时间戳关联地存储。
图3示出根据本说明书实施例的一种从区块链获取商户认证数据的方法,所述区块链包括多个验证节点和多个使用节点,所述多个验证节点与发行各类认证数据的各个机构分别对应,所述方法在所述多个使用节点中的第一使用节点执行,包括:
在步骤S302,获取区块链中的全部区块,其中所述全部区块中存储有多个商户各自的认证数据,其中,所述多个商户中包括第一商户;以及
在步骤S304,从所述全部区块读取第一商户的至少一份认证数据。
首先,在步骤S302,获取区块链中的全部区块,其中所述全部区块中存储有多个商户各自的认证数据,其中,所述多个商户中包括第一商户。区块链的具体描述可参考上文所述,在此不再赘述。所述第一使用节点可以为所述多个使用节点中的任意一个使用节点。所述使用节点作为区块链中的节点可下载区块链中的全量数据、并不断更新本地存储的区块(数据块),以使得本地存储的区块与区块链中的区块保持一致。如上文所述,所述多个区块中存储的为商户的认证数据,及与该认证数据关联的信息,如相关的商户、发行机构、时间戳等等。其中,区块链中的区块随着时间的推移不断增长,而同时,在区块链中各个节点处存储的区块也随之更新。
在步骤S304,从所述全部区块读取第一商户的至少一份认证数据。
在一个实施例中,在第一使用节点本地,通过在所述多个区块中以第一商户标识作为关键词进行搜索,以获取该第一商户的至少一份认证数据。例如,认证数据为文本信息,该文本信息中包括第一商户的商户标识。从而通过该第一商户标识,可搜索出该认证数据。例如,在将第一商户与其认证数据关联地存储的情况中,通过以第一商户标识作为关键词进行搜索,可搜索出与第一商户关联的至少一份认证数据。
在一个实施例中,在第一使用节点本地,可对所述全部区块建立关于各商户的索引。该索引例如可基于一定的顺序对商户进行排序,例如,在商户标识为拼音的情况中,可基于字母顺序对商户进行排序,从而可在索引中容易地找到第一商户,并在索引中读取第一商户对应的至少一份认证数据。
在一个实施例中,在第一使用节点本地,可对所述全部区块建立关于认证数据的数据库。所述数据库中例如包括商户与认证数据的关联关系、发行机构与认证数据的关联关系、认证数据与其所在区块时间戳的关联关系等等。从而可基于所述数据库,读取第一商户的至少一份认证数据。在获取该至少一份认证数据之后,还可以基于所述数据库,获取所述至少一份认证数据各自对应的时间戳和发行机构,从而可以基于时间戳和/或发行机构对所述至少一份认证数据进行筛选,如,可选择时间戳最近的三个认证数据输出,或者,可选择指定机构(如工商局)发行的认证数据输出。
图4示出根据本说明书实施例的一种向区块链中存入商户认证数据的装置400,所述区块链包括多个验证节点和多个使用节点,所述多个验证节点与发行各类认证数据的各个机构分别对应,所述装置在所述多个验证节点中的第一验证节点实施,包括:
获取单元41,配置为,获取商户的认证数据,所述认证数据由所述第一验证节点对应的机构发行;以及
广播单元42,配置为,向所述区块链中的其它多个验证节点广播所述认证数据,以使得所述认证数据基于共识机制得到验证、并在验证通过的情况中被存入所述区块链中。
在一个实施例中,所述广播单元42还配置为,向所述区块链中的其它多个验证节点广播所述认证数据及所述第一验证节点的数字签名,其中,所述验证包括对所述数字签名的验证。
图5示出根据本说明书实施例的一种从区块链获取商户认证数据的装置500,所述区块链包括多个验证节点和多个使用节点,所述多个验证节点与发行各类认证数据的各个机构分别对应,所述装置在所述多个使用节点中的第一使用节点实施,包括:
获取单元51,配置为,获取区块链中的全部区块,其中所述全部区块中存储有多个商户各自的认证数据,其中,所述多个商户中包括第一商户;以及
读取单元52,配置为,从所述全部区块读取第一商户的至少一份认证数据。
在一个实施例中,所述读取单元52包括,索引建立子单元521,配置为,对所述全部区块建立关于商户的索引,以及第一读取子单元522,配置为,基于所述索引读取第一商户的至少一份认证数据。
在一个实施例中,所述读取单元52包括,数据库建立子单元523,配置为,对所述全部区块建立关于认证数据的数据库,其中,所述数据库中包括商户与认证数据的关联关系,以及第二读取子单元524,配置为,基于所述数据库读取第一商户的至少一份认证数据。
在一个实施例中,所述数据库中还包括认证数据与其发行机构对应的验证节点的节点标识的关联关系,其中,所述读取单元52还包括,第三读取子单元525,配置为,从所述全部区块读取第一商户的至少一份认证数据及其各自的发行机构的验证节点的节点标识,以及第一筛选子单元526,配置为,基于该至少一份认证数据各自的发行机构的验证节点的节点标识,对所述至少一份认证数据进行筛选。
在一个实施例中,所述数据库中还包括认证数据与其所在区块的时间戳的关联关系,其中,所述读取单元52还包括,第四读取子单元527,配置为,从所述全部区块读取第一商户的至少一份认证数据及其各自对应的时间戳,以及第二筛选子单元528,配置为,基于该至少一份认证数据各自对应的时间戳,对所述至少一份认证数据进行筛选。
本说明书另一方面提供一种计算设备,包括存储器和处理器,其特征在于,所述存储器中存储有可执行代码,所述处理器执行所述可执行代码时,实现上述任一项方法。
通过根据本说明书实施例的商户认证方案,通过区块链的p2p网络,能够保证所有节点及时达到数据一致,解决了传统认证流程导致的数据不一致性问题;通过区块链网络记录所有的认证数据变更记录,使得任何一个认证数据变更可追溯,从而解决了传统认证流程的数据不可跟踪问题;另外,通过区块链网络的网络结构和运行机制,可以使得各节点的数据秒极同步,解决了传统认证流程复杂,数据链路太长的问题。
本说明书中的各个实施例均采用递进的方式描述,各个实施例之间相同相似的部分互相参见即可,每个实施例重点说明的都是与其他实施例的不同之处。尤其,对于系统实施例而言,由于其基本相似于方法实施例,所以描述的比较简单,相关之处参见方法 实施例的部分说明即可。
上述对本说明书特定实施例进行了描述。其它实施例在所附权利要求书的范围内。在一些情况下,在权利要求书中记载的动作或步骤可以按照不同于实施例中的顺序来执行并且仍然可以实现期望的结果。另外,在附图中描绘的过程不一定要求示出的特定顺序或者连续顺序才能实现期望的结果。在某些实施方式中,多任务处理和并行处理也是可以的或者可能是有利的。
本领域普通技术人员应该还可以进一步意识到,结合本文中所公开的实施例描述的各示例的单元及算法步骤,能够以电子硬件、计算机软件或者二者的结合来实现,为了清楚地说明硬件和软件的可互换性,在上述说明中已经按照功能一般性地描述了各示例的组成及步骤。这些功能究竟以硬件还是软件方式来执轨道,取决于技术方案的特定应用和设计约束条件。本领域普通技术人员可以对每个特定的应用来使用不同方法来实现所描述的功能,但是这种实现不应认为超出本申请的范围。
结合本文中所公开的实施例描述的方法或算法的步骤可以用硬件、处理器执轨道的软件模块,或者二者的结合来实施。软件模块可以置于随机存储器(RAM)、内存、只读存储器(ROM)、电可编程ROM、电可擦除可编程ROM、寄存器、硬盘、可移动磁盘、CD-ROM、或技术领域内所公知的任意其它形式的存储介质中。
以上所述的具体实施方式,对本发明的目的、技术方案和有益效果进行了进一步详细说明,所应理解的是,以上所述仅为本发明的具体实施方式而已,并不用于限定本发明的保护范围,凡在本发明的精神和原则之内,所做的任何修改、等同替换、改进等,均应包含在本发明的保护范围之内。

Claims (27)

  1. 一种向区块链中存入商户认证数据的方法,所述区块链包括多个验证节点和多个使用节点,所述多个验证节点与发行各类认证数据的各个机构分别对应,所述方法在所述多个验证节点中的第一验证节点执行,包括:
    获取商户的认证数据,所述认证数据由所述第一验证节点对应的机构发行;以及
    向所述区块链中的其它多个验证节点广播所述认证数据,以使得所述认证数据基于共识机制得到验证、并在验证通过的情况中被存入所述区块链中。
  2. 根据权利要求1所述的方法,其中,所述认证数据包括图像数据和/或文本数据。
  3. 根据权利要求1所述的方法,其中,所述认证数据在验证通过的情况中与所述商户的商户标识关联地被存入所述区块链中。
  4. 根据权利要求1所述的方法,其中,所述认证数据在验证通过的情况中与所述第一验证节点的节点标识关联地被存入所述区块链中。
  5. 根据权利要求1所述的方法,其中,所述验证通过部署在所述区块链中的智能合约执行,所述智能合约由所述多个验证节点共同签订。
  6. 根据权利要求1所述的方法,其中,所述验证包括对图像数据的以下至少一项的验证:尺寸、清晰度、内容合法性、内容正确性、是否修改。
  7. 根据权利要求1所述的方法,其中,所述验证包括对文本数据的以下至少一项的验证:格式、内容正确性。
  8. 根据权利要求1所述的方法,其中,向所述区块链中的其它多个验证节点广播所述认证数据包括,向所述区块链中的其它多个验证节点广播所述认证数据及所述第一验证节点的数字签名,其中,所述验证包括对所述数字签名的验证。
  9. 一种从区块链获取商户认证数据的方法,所述区块链包括多个验证节点和多个使用节点,所述多个验证节点与发行各类认证数据的各个机构分别对应,所述方法在所述多个使用节点中的第一使用节点执行,包括:
    获取区块链中的全部区块,其中所述全部区块中存储有多个商户各自的认证数据,其中,所述多个商户中包括第一商户;以及
    从所述全部区块读取第一商户的至少一份认证数据。
  10. 根据权利要求9所述的方法,其中,从所述全部区块读取第一商户的认证数据包括,对所述全部区块建立关于商户的索引,并基于所述索引读取第一商户的至少一份认证数据。
  11. 根据权利要求9所述的方法,其中,从所述全部区块读取第一商户的认证数据包 括,对所述全部区块建立关于认证数据的数据库,并基于所述数据库读取第一商户的至少一份认证数据,其中,所述数据库中包括商户与认证数据的关联关系。
  12. 根据权利要求11所述的方法,其中,所述数据库中还包括认证数据与其发行机构对应的验证节点的节点标识的关联关系,其中,从所述全部区块读取第一商户的至少一份认证数据包括,从所述全部区块读取第一商户的至少一份认证数据及其各自的发行机构的验证节点的节点标识,并基于该至少一份认证数据各自的发行机构的验证节点的节点标识,对所述至少一份认证数据进行筛选。
  13. 根据权利要求11所述的方法,其中,所述数据库中还包括认证数据与其所在区块的时间戳的关联关系,其中,从所述全部区块读取第一商户的至少一份认证数据包括,从所述全部区块读取第一商户的至少一份认证数据及其各自对应的时间戳,并基于该至少一份认证数据各自对应的时间戳,对所述至少一份认证数据进行筛选。
  14. 一种向区块链中存入商户认证数据的装置,所述区块链包括多个验证节点和多个使用节点,所述多个验证节点与发行各类认证数据的各个机构分别对应,所述装置在所述多个验证节点中的第一验证节点实施,包括:
    获取单元,配置为,获取商户的认证数据,所述认证数据由所述第一验证节点对应的机构发行;以及
    广播单元,配置为,向所述区块链中的其它多个验证节点广播所述认证数据,以使得所述认证数据基于共识机制得到验证、并在验证通过的情况中被存入所述区块链中。
  15. 根据权利要求14所述的装置,其中,所述认证数据包括图像数据和/或文本数据。
  16. 根据权利要求14所述的装置,其中,所述认证数据在验证通过的情况中与所述商户的商户标识关联地被存入所述区块链中。
  17. 根据权利要求14所述的装置,其中,所述认证数据在验证通过的情况中与所述第一验证节点的节点标识关联地被存入所述区块链中。
  18. 根据权利要求14所述的装置,其中,所述验证通过部署在所述区块链中的智能合约执行,所述智能合约由所述多个验证节点共同签订。
  19. 根据权利要求14所述的装置,其中,所述验证包括对图像数据的以下至少一项的验证:尺寸、清晰度、内容合法性、内容正确性、是否修改。
  20. 根据权利要求14所述的装置,其中,所述验证包括对文本数据的以下至少一项的验证:格式、内容正确性。
  21. 根据权利要求14所述的装置,其中,所述广播单元还配置为,向所述区块链中的其它多个验证节点广播所述认证数据及所述第一验证节点的数字签名,其中,所述验 证包括对所述数字签名的验证。
  22. 一种从区块链获取商户认证数据的装置,所述区块链包括多个验证节点和多个使用节点,所述多个验证节点与发行各类认证数据的各个机构分别对应,所述装置在所述多个使用节点中的第一使用节点实施,包括:
    获取单元,配置为,获取区块链中的全部区块,其中所述全部区块中存储有多个商户各自的认证数据,其中,所述多个商户中包括第一商户;以及
    读取单元,配置为,从所述全部区块读取第一商户的至少一份认证数据。
  23. 根据权利要求22所述的装置,其中,所述读取单元包括,索引建立子单元,配置为,对所述全部区块建立关于商户的索引,以及第一读取子单元,配置为,基于所述索引读取第一商户的至少一份认证数据。
  24. 根据权利要求22所述的装置,其中,所述读取单元包括,数据库建立子单元,配置为,对所述全部区块建立关于认证数据的数据库,其中,所述数据库中包括商户与认证数据的关联关系,以及第二读取子单元,配置为,基于所述数据库读取第一商户的至少一份认证数据。
  25. 根据权利要求24所述的装置,其中,所述数据库中还包括认证数据与其发行机构对应的验证节点的节点标识的关联关系,其中,所述读取单元还包括,第三读取子单元,配置为,从所述全部区块读取第一商户的至少一份认证数据及其各自的发行机构的验证节点的节点标识,以及第一筛选子单元,配置为,基于该至少一份认证数据各自的发行机构的验证节点的节点标识,对所述至少一份认证数据进行筛选。
  26. 根据权利要求24所述的装置,其中,所述数据库中还包括认证数据与其所在区块的时间戳的关联关系,其中,所述读取单元还包括,第四读取子单元,配置为,从所述全部区块读取第一商户的至少一份认证数据及其各自对应的时间戳,以及第二筛选子单元,配置为,基于该至少一份认证数据各自对应的时间戳,对所述至少一份认证数据进行筛选。
  27. 一种计算设备,包括存储器和处理器,其特征在于,所述存储器中存储有可执行代码,所述处理器执行所述可执行代码时,实现权利要求1-13中任一项所述的方法。
PCT/CN2019/106585 2018-11-14 2019-09-19 向区块链中存入、及获取商户认证数据的方法和装置 WO2020098373A1 (zh)

Priority Applications (3)

Application Number Priority Date Filing Date Title
SG11202100502TA SG11202100502TA (en) 2018-11-14 2019-09-19 Method and apparatus for storing and obtaining merchant authentication data in blockchain network
EP19883856.7A EP3816916A4 (en) 2018-11-14 2019-09-19 METHOD AND DEVICE FOR STORING DEALER AUTHENTICATION DATA IN A BLOCKCHAIN AND METHOD AND DEVICE FOR OBTAINING DEALER AUTHENTICATION DATA FROM A BLOCKCHAIN
US17/191,375 US20210192512A1 (en) 2018-11-14 2021-03-03 Method and apparatus for storing and obtaining merchant authentication data in blockchain network

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
CN201811353554.4A CN109583912A (zh) 2018-11-14 2018-11-14 基于区块链的商户认证方法和装置
CN201811353554.4 2018-11-14

Related Child Applications (1)

Application Number Title Priority Date Filing Date
US17/191,375 Continuation US20210192512A1 (en) 2018-11-14 2021-03-03 Method and apparatus for storing and obtaining merchant authentication data in blockchain network

Publications (1)

Publication Number Publication Date
WO2020098373A1 true WO2020098373A1 (zh) 2020-05-22

Family

ID=65922388

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2019/106585 WO2020098373A1 (zh) 2018-11-14 2019-09-19 向区块链中存入、及获取商户认证数据的方法和装置

Country Status (6)

Country Link
US (1) US20210192512A1 (zh)
EP (1) EP3816916A4 (zh)
CN (1) CN109583912A (zh)
SG (1) SG11202100502TA (zh)
TW (1) TW202018561A (zh)
WO (1) WO2020098373A1 (zh)

Cited By (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN111835863A (zh) * 2020-07-23 2020-10-27 上海优扬新媒信息技术有限公司 电子资源处理方法、装置、设备及存储介质
CN113298649A (zh) * 2020-07-01 2021-08-24 阿里巴巴集团控股有限公司 交易数据的处理方法和装置、数据处理方法和装置
CN113938491A (zh) * 2021-09-02 2022-01-14 中国科学院信息工程研究所 一种基于区块链技术的指令数据可溯源的防篡改方法和系统
CN116405188A (zh) * 2023-06-07 2023-07-07 湖南元数科技有限公司 一种基于区块链的保险投保流程数据存储方法及系统

Families Citing this family (15)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN109583912A (zh) * 2018-11-14 2019-04-05 阿里巴巴集团控股有限公司 基于区块链的商户认证方法和装置
WO2020213125A1 (ja) * 2019-04-18 2020-10-22 三菱電機株式会社 入退管理システム、入退管理システムの認証装置、入退管理システムの管理装置、入退管理システムの携帯端末、入退管理データのデータ構造、入退管理プログラム、および入退管理システムの構築方法
CN111988145B (zh) * 2019-05-24 2023-08-04 阿里巴巴集团控股有限公司 业务认证及副证申请的处理方法、装置、系统及电子设备
CN110336797B (zh) * 2019-06-18 2020-09-15 阿里巴巴集团控股有限公司 基于区块链的企业认证、认证追溯方法、装置及设备
CN110336833B (zh) * 2019-07-30 2022-06-21 中国工商银行股份有限公司 基于区块链的图片内容共识方法、服务器
CN110443624A (zh) * 2019-07-31 2019-11-12 中国工商银行股份有限公司 基于区块链的收单商户审查方法及节点装置
WO2021189219A1 (en) * 2020-03-23 2021-09-30 Dora Network Limited Blockchain consensus method and system, and computer-readable storage medium
CN111737707B (zh) * 2020-05-14 2022-09-27 云南云烁巴克云科技有限公司 基于区块链的验证包生成、验证方法、服务器和电子设备
CN111526219B (zh) 2020-07-03 2021-02-09 支付宝(杭州)信息技术有限公司 一种联盟链的共识方法及联盟链系统
CN111967062A (zh) * 2020-08-21 2020-11-20 支付宝(杭州)信息技术有限公司 基于区块链的数据处理系统、方法及装置
CN112766755A (zh) * 2021-01-25 2021-05-07 支付宝(杭州)信息技术有限公司 一种业务处理方法、装置、设备及介质
CN112884484A (zh) * 2021-01-29 2021-06-01 上海尚象信息科技有限公司 基于区块链的企业身份认证方法及系统
CN113516065B (zh) * 2021-07-03 2022-08-05 北京中建建筑科学研究院有限公司 基于区块链的资料权重测算方法、装置、服务器及存储介质
CN115296972B (zh) * 2022-08-04 2023-09-26 重庆邮电大学 一种基于区块链pbft共识机制的数据一致性共识方法
CN117574408B (zh) * 2024-01-15 2024-05-14 杭州字节方舟科技有限公司 基于区块链的生产资料管理方法、装置及电子设备

Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN107231351A (zh) * 2017-05-25 2017-10-03 远光软件股份有限公司 电子证件的管理方法及相关设备
CN107977910A (zh) * 2017-12-04 2018-05-01 四川长虹电器股份有限公司 一种基于区块链的学历签发方法和系统
CN108009646A (zh) * 2017-11-30 2018-05-08 深圳市轱辘车联数据技术有限公司 车辆数据处理方法及服务器
US20180198794A1 (en) * 2017-01-10 2018-07-12 Electronics And Telecommunications Research Institute Apparatus and system for managing transaction information of public organization using blockchain technology
CN108667632A (zh) * 2018-04-19 2018-10-16 阿里巴巴集团控股有限公司 基于区块链的信用记录共享方法及装置、电子设备
CN109583912A (zh) * 2018-11-14 2019-04-05 阿里巴巴集团控股有限公司 基于区块链的商户认证方法和装置

Family Cites Families (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
KR101835520B1 (ko) * 2016-12-29 2018-04-19 주식회사 코인플러그 밸런스 데이터베이스를 관리하여 통합 포인트 서비스를 제공하는 방법 및 이를 이용한 지원 서버
US11249977B2 (en) * 2017-03-03 2022-02-15 Mastercard International Incorporated Method and system for storage and transfer of verified data via blockchain
CN107274130A (zh) * 2017-06-16 2017-10-20 合肥维天运通信息科技股份有限公司 一种基于区块链技术和物流信息平台的司机征信系统及方法
CN107425969A (zh) * 2017-09-08 2017-12-01 华中科技大学 一种基于区块链技术的雇员体检信息认证方法
US10601598B2 (en) * 2017-11-02 2020-03-24 Keir Finlow-Bates System and method for storing the location on a blockchain of a hash of a digital item within said digital item
WO2020036657A1 (en) * 2018-04-26 2020-02-20 The Assay Depot, Inc. Decentralized data verification

Patent Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20180198794A1 (en) * 2017-01-10 2018-07-12 Electronics And Telecommunications Research Institute Apparatus and system for managing transaction information of public organization using blockchain technology
CN107231351A (zh) * 2017-05-25 2017-10-03 远光软件股份有限公司 电子证件的管理方法及相关设备
CN108009646A (zh) * 2017-11-30 2018-05-08 深圳市轱辘车联数据技术有限公司 车辆数据处理方法及服务器
CN107977910A (zh) * 2017-12-04 2018-05-01 四川长虹电器股份有限公司 一种基于区块链的学历签发方法和系统
CN108667632A (zh) * 2018-04-19 2018-10-16 阿里巴巴集团控股有限公司 基于区块链的信用记录共享方法及装置、电子设备
CN109583912A (zh) * 2018-11-14 2019-04-05 阿里巴巴集团控股有限公司 基于区块链的商户认证方法和装置

Cited By (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN113298649A (zh) * 2020-07-01 2021-08-24 阿里巴巴集团控股有限公司 交易数据的处理方法和装置、数据处理方法和装置
CN111835863A (zh) * 2020-07-23 2020-10-27 上海优扬新媒信息技术有限公司 电子资源处理方法、装置、设备及存储介质
CN111835863B (zh) * 2020-07-23 2023-04-18 度小满科技(北京)有限公司 电子资源处理方法、装置、设备及存储介质
CN113938491A (zh) * 2021-09-02 2022-01-14 中国科学院信息工程研究所 一种基于区块链技术的指令数据可溯源的防篡改方法和系统
CN113938491B (zh) * 2021-09-02 2022-10-14 中国科学院信息工程研究所 一种基于区块链技术的指令数据可溯源的防篡改方法和系统
CN116405188A (zh) * 2023-06-07 2023-07-07 湖南元数科技有限公司 一种基于区块链的保险投保流程数据存储方法及系统
CN116405188B (zh) * 2023-06-07 2023-08-22 湖南元数科技有限公司 一种基于区块链的保险投保流程数据存储方法及系统

Also Published As

Publication number Publication date
US20210192512A1 (en) 2021-06-24
SG11202100502TA (en) 2021-02-25
EP3816916A4 (en) 2021-09-08
CN109583912A (zh) 2019-04-05
TW202018561A (zh) 2020-05-16
EP3816916A1 (en) 2021-05-05

Similar Documents

Publication Publication Date Title
WO2020098373A1 (zh) 向区块链中存入、及获取商户认证数据的方法和装置
EP3720045B1 (en) Blockchain-based data verification method and apparatus
US11057353B2 (en) Systems, methods, and devices for implementing a smart contract on a distributed ledger technology platform
CN110620810B (zh) 在区块链上的连续资产转移的非链接所有权
CN110495132B (zh) 用于在分布式网络节点内生成、上传和执行代码区块的系统和方法
WO2019233345A1 (zh) 数据处理方法、系统、区块链平台以及可读存储介质
WO2017148245A1 (zh) 版权管理方法和系统
WO2020063185A1 (zh) 基于区块链的防伪方法及装置、电子设备
US11271751B2 (en) Distributed data records
US11495075B2 (en) Distributed voting system, method, apparatus, computer device and readable storage medium
TW202004654A (zh) 基於區塊鏈的商品溯源方法及裝置、電子設備
CN116671087A (zh) 用于构建区块链以验证智能合约资产的系统和方法
US20210192520A1 (en) Distributed credit ecosystem
US20100332240A1 (en) Decentralized account digest using signed electronic receipts
CN110390183A (zh) 基于区块链的数字版权交易存证系统
US11687904B2 (en) Downstream tracking of content consumption
CN113037505B (zh) 一种可信Web应用的实现方法及系统
CN110599176A (zh) 基于区块链的数据处理方法、装置、存储介质及节点设备
CN116028982A (zh) 基于非同质化通证的处理方法、装置及系统
CN114531260A (zh) 基于联盟链系统的信息处理方法及相关设备
US12001522B1 (en) Asset metadata oracle service for facilitating digital asset trading
US20220393892A1 (en) Composite Cryptographic Systems with Variable Configuration Parameters and Memory Bound Functions
US20230394481A1 (en) Authorizing public trust ledger actions via a database system
US20230119482A1 (en) Method for securing private structured databases within a public blockchain
US11270362B1 (en) Systems and methods for proof of application ownership

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 19883856

Country of ref document: EP

Kind code of ref document: A1

ENP Entry into the national phase

Ref document number: 2019883856

Country of ref document: EP

Effective date: 20210128

NENP Non-entry into the national phase

Ref country code: DE